on statistically secure obfuscation with approximate
play

On Statistically Secure Obfuscation with Approximate Correctness - PowerPoint PPT Presentation

Mar 28, 2023 •633 likes •1.12k views

1 On Statistically Secure Obfuscation with Approximate Correctness Zvika Brakerski 1 Christina Brzuska 2 Nils Fleischhacker 3 1 Weizmann Institute of Science 2 Technical University Hamburg 3 Saarland University August 15, 2016 2 Statistically

  1. 1 On Statistically Secure Obfuscation with Approximate Correctness Zvika Brakerski 1 Christina Brzuska 2 Nils Fleischhacker 3 1 Weizmann Institute of Science 2 Technical University Hamburg 3 Saarland University August 15, 2016

  2. 2 Statistically Secure Obfuscation r C O C ′

  3. 2 Statistically Secure Obfuscation r C O C ′ ◮ Perfect Correctness: For any circuit C ∀ x : C ′ ( x ) = C ( x )

  4. 2 Statistically Secure Obfuscation r C O C ′ ◮ Perfect Correctness: For any circuit C ∀ x : C ′ ( x ) = C ( x ) ◮ (1 − ǫ ) -Approximate Correctness: For any circuit C , � � C ′ ( x ) = C ( x ) Pr ≥ 1 − ǫ ( n ) r,x

  5. 3 Statistically Secure Obfuscation r C O C ′ ◮ Indistinguishability Obfuscator: For any pair of circuits, such that C 1 ≡ C 2 and | C 1 | = | C 2 | SD ( O ( C 1 ) , O ( C 2 )) ≤ negl ( n )

  6. 3 Statistically Secure Obfuscation r C O C ′ ◮ Indistinguishability Obfuscator: For any pair of circuits, such that C 1 ≡ C 2 and | C 1 | = | C 2 | SD ( O ( C 1 ) , O ( C 2 )) ≤ negl ( n ) ◮ (1 − δ ) -Correlation Obfuscator: For any pair of circuits, such that C 1 ≡ C 2 and | C 1 | = | C 2 | SD ( O ( C 1 ) , O ( C 2 )) ≤ δ ( n )

  7. 3 Statistically Secure Obfuscation r C O C ′ ◮ Indistinguishability Obfuscator: For any pair of circuits, such that C 1 ≡ C 2 and | C 1 | = | C 2 | SD ( O ( C 1 ) , O ( C 2 )) ≤ negl ( n ) � � ◮ (1 − δ ) -Correlation Obfuscator: For any pair of circuits, such that C 1 ≡ C 2 and | C 1 | = | C 2 | SD ( O ( C 1 ) , O ( C 2 )) ≤ δ ( n )

  8. 4 Why Do We Even Care About Approximate Correctness? Because approximate obfuscation is useful! [MMNPs16,SW14,Hol06] 1 Statistical Distance δ Allows PKE from OWF 0 . 75 0 . 5 0 . 25 0 . 1 0 . 2 0 . 3 0 . 4 0 . 5 Correctness Error ǫ

  9. 5 Main Result ◮ If statistically secure, approximately correct iO (saiO) exists, then either one-way functions do not exist, or NP ⊆ AM ∩ coAM. ◮ More Generally: If (1 − δ ) -statistically secure, (1 − ǫ ) -approximately correct correlation obfuscation (sacO) exists with δ ( n ) ≤ 1 3 − 2 1 3 ǫ ( n ) − poly ( n ) , then either one-way functions do not exist, or NP ⊆ AM ∩ coAM. ◮ For very weak parameters, a trivial construction of sacO exists with δ ( n ) = 2 ǫ ( n ) .

  10. 6 The Landscape of Correlation Obfuscation 1 Achievable with Trivial Construction 0 . 9 Ruled out by Negative Result 0 . 8 Statistical Distance δ 0 . 7 0 . 6 0 . 5 0 . 4 0 . 3 0 . 2 0 . 1 0 . 1 0 . 2 0 . 3 0 . 4 0 . 5 Correctness Error ǫ

  11. 6 The Landscape of Correlation Obfuscation 1 Achievable with Trivial Construction 0 . 9 Ruled out by Negative Result Allows PKE from OWF 0 . 8 Statistical Distance δ 0 . 7 0 . 6 0 . 5 0 . 4 0 . 3 0 . 2 0 . 1 0 . 1 0 . 2 0 . 3 0 . 4 0 . 5 Correctness Error ǫ

  12. 7 Impossibility of Perfect Correctness [GR07] Ψ un Ψ sat

  13. 7 Impossibility of Perfect Correctness [GR07] Ψ un Ψ sat 0

  14. 7 Impossibility of Perfect Correctness [GR07] Ψ un Ψ sat 0 siO siO siO

  15. 7 Impossibility of Perfect Correctness [GR07] ≡ Ψ un Ψ sat 0 siO siO siO

  16. 7 Impossibility of Perfect Correctness [GR07] Ψ un Ψ sat 0 �≡ siO siO siO

  17. 7 Impossibility of Perfect Correctness [GR07] Ψ un Ψ sat 0 siO siO siO GapSD ∈ AM ∩ coAM = ⇒ NP ⊆ AM ∩ coAM

  18. 8 Why Does the Approach Fail in the Approximate Case? Ψ sat 0 saiO saiO

  19. 8 Why Does the Approach Fail in the Approximate Case? Ψ sat 0 saiO saiO

  20. 9 Overview of Our Approach C Y C X [ k, Ψ] saiO saiO

  21. 9 Overview of Our Approach C Y C X [ k, Ψ un ] ≡ saiO saiO

  22. 9 Overview of Our Approach x 0 x 0 C Y a � = C X [ k, Ψ sat ] b ∼ ∼ ∼ saiO saiO

  23. 9 Overview of Our Approach ≡ C Y C X [ k, Ψ sat ] C saiO saiO

  24. 9 Overview of Our Approach ≡ ≈ C Y C X [ k, Ψ sat ] C saiO saiO

  25. 10 Puncturable Pseudorandom Functions [BW13,BGI14,KPTZ13] k ∗ ← Puncture ( k, x 0 ) b ← PRF ( k, x )

  26. 10 Puncturable Pseudorandom Functions [BW13,BGI14,KPTZ13] k ∗ ← Puncture ( k, x 0 ) b ← PRF ( k, x ) ◮ Functionality Preserved Under Puncturing: For all x � = x 0 , PRF ( k ∗ , x ) = PRF ( k, x )

  27. 10 Puncturable Pseudorandom Functions [BW13,BGI14,KPTZ13] k ∗ ← Puncture ( k, x 0 ) b ← PRF ( k, x ) ◮ Functionality Preserved Under Puncturing: For all x � = x 0 , PRF ( k ∗ , x ) = PRF ( k, x ) ◮ Security: 1 n BP x 0 k ← $ { 0 , 1 } n , k ∗ = Puncture ( k, x 0 )

  28. 10 Puncturable Pseudorandom Functions [BW13,BGI14,KPTZ13] k ∗ ← Puncture ( k, x 0 ) b ← PRF ( k, x ) ◮ Functionality Preserved Under Puncturing: For all x � = x 0 , PRF ( k ∗ , x ) = PRF ( k, x ) ◮ Security: 1 n BP x 0 k ← $ { 0 , 1 } n , k ∗ = Puncture ( k, x 0 )

  29. 10 Puncturable Pseudorandom Functions [BW13,BGI14,KPTZ13] k ∗ ← Puncture ( k, x 0 ) b ← PRF ( k, x ) ◮ Functionality Preserved Under Puncturing: For all x � = x 0 , PRF ( k ∗ , x ) = PRF ( k, x ) ◮ Security: 1 n BP x 0 k ← $ { 0 , 1 } n , k ∗ = Puncture ( k, x 0 ) k ∗ , PRF ( k, x 0 ) BP

  30. 10 Puncturable Pseudorandom Functions [BW13,BGI14,KPTZ13] k ∗ ← Puncture ( k, x 0 ) b ← PRF ( k, x ) ◮ Functionality Preserved Under Puncturing: For all x � = x 0 , PRF ( k ∗ , x ) = PRF ( k, x ) ◮ Security: 1 n BP x 0 k ← $ { 0 , 1 } n , k ∗ = Puncture ( k, x 0 ) k ∗ , PRF ( k, x 0 ) k ∗ , b ← $ { 0 , 1 } BP BP

  31. 10 Puncturable Pseudorandom Functions [BW13,BGI14,KPTZ13] k ∗ ← Puncture ( k, x 0 ) b ← PRF ( k, x ) ◮ Functionality Preserved Under Puncturing: For all x � = x 0 , PRF ( k ∗ , x ) = PRF ( k, x ) ◮ Security: 1 n BP x 0 k ← $ { 0 , 1 } n , k ∗ = Puncture ( k, x 0 ) k ∗ , PRF ( k, x 0 ) k ∗ , b ← $ { 0 , 1 } ≈ BP BP

  32. 11 Enforcing Large Statistical Distance C [ k ∗ , x 0 , b ]( x ) if x = x 0 Let C ′ denote saiO ( C [ k ∗ , x 0 , b ]) . return b else return PRF ( k ∗ , x )

  33. 11 Enforcing Large Statistical Distance C [ k ∗ , x 0 , b ]( x ) if x = x 0 Let C ′ denote saiO ( C [ k ∗ , x 0 , b ]) . return b else return PRF ( k ∗ , x ) b = PRF ( k, x 0 ) ⊕ 1

  34. 11 Enforcing Large Statistical Distance C [ k ∗ , x 0 , b ]( x ) if x = x 0 Let C ′ denote saiO ( C [ k ∗ , x 0 , b ]) . return b else return PRF ( k ∗ , x ) b = PRF ( k, x 0 ) ⊕ 1 b = PRF ( k, x 0 )

  35. 11 Enforcing Large Statistical Distance C [ k ∗ , x 0 , b ]( x ) if x = x 0 Let C ′ denote saiO ( C [ k ∗ , x 0 , b ]) . return b else return PRF ( k ∗ , x ) b = PRF ( k, x 0 ) ⊕ 1 b = PRF ( k, x 0 ) C [ k ∗ , x 0 , b ] ≡ PRF ( k, · )

  36. 11 Enforcing Large Statistical Distance C [ k ∗ , x 0 , b ]( x ) if x = x 0 Let C ′ denote saiO ( C [ k ∗ , x 0 , b ]) . return b else return PRF ( k ∗ , x ) b = PRF ( k, x 0 ) ⊕ 1 b = PRF ( k, x 0 ) C [ k ∗ , x 0 , b ] ≡ PRF ( k, · ) C PRF ← saiO ( PRF ( k, · )) Pr[ C PRF ( x 0 ) = b ] ≥ 1 − ǫ Pr[ C ′ ( x 0 ) = b ] � 1 − ǫ

  37. 11 Enforcing Large Statistical Distance C [ k ∗ , x 0 , b ]( x ) if x = x 0 Let C ′ denote saiO ( C [ k ∗ , x 0 , b ]) . return b else return PRF ( k ∗ , x ) b = PRF ( k, x 0 ) ⊕ 1 b = PRF ( k, x 0 ) C [ k ∗ , x 0 , b ] ≡ PRF ( k, · ) PRF security Pr[ C ′ ( x 0 ) = b ] � 1 − ǫ Pr[ C ′ ( x 0 ) = b ] � 1 − ǫ

  38. 11 Enforcing Large Statistical Distance C [ k ∗ , x 0 , b ]( x ) if x = x 0 Let C ′ denote saiO ( C [ k ∗ , x 0 , b ]) . return b else return PRF ( k ∗ , x ) b = PRF ( k, x 0 ) ⊕ 1 b = PRF ( k, x 0 ) Pr[ C PRF ( x 0 ) = PRF ( k, x 0 )] ≥ 1 − ǫ C [ k ∗ , x 0 , b ] ≡ PRF ( k, · ) ∧ Pr[ C ′ ( x 0 ) � = PRF ( k, x 0 )] � 1 − ǫ = ⇒ SD ( C PRF , C ) � 1 − 2 ǫ PRF security Pr[ C ′ ( x 0 ) = b ] � 1 − ǫ Pr[ C ′ ( x 0 ) = b ] � 1 − ǫ

  39. 12 Restriction to Unique-SAT ◮ We restrict our attention to Unique-SAT (USAT) ◮ USAT is NP hard via a randomized reduction [VV85] ◮ Combining this with previous results [MX10,BL13] we show that USAT ∈ BPP GapSD = ⇒ SAT ∈ AM ∩ coAM

  40. 13 The Formula-Indexed Circuit C X [ k, s, Ψ]( x ) if Ψ( x ⊕ s ) = 1 return PRF ( k, x ) ⊕ 1 else return PRF ( k, x )

  41. 13 The Formula-Indexed Circuit C X [ k, s, Ψ]( x ) if Ψ( x ⊕ s ) = 1 return PRF ( k, x ) ⊕ 1 else return PRF ( k, x ) Ψ ∈ USAT Ψ ∈ UNSAT

  42. 13 The Formula-Indexed Circuit C X [ k, s, Ψ]( x ) if Ψ( x ⊕ s ) = 1 return PRF ( k, x ) ⊕ 1 else return PRF ( k, x ) Ψ ∈ USAT Ψ ∈ UNSAT C X [ k, s, Ψ] ≡ PRF ( k, · )

  43. 13 The Formula-Indexed Circuit C X [ k, s, Ψ]( x ) if Ψ( x ⊕ s ) = 1 return PRF ( k, x ) ⊕ 1 else return PRF ( k, x ) Ψ ∈ USAT Ψ ∈ UNSAT C X [ k, s, Ψ] ≡ C [ k ∗ , x 0 , b ] C X [ k, s, Ψ] ≡ PRF ( k, · ) x 0 = x ψ ⊕ s for b = PRF ( k, x 0 ) ⊕ 1

  44. 14 Putting it All Together X [Ψ](1 n ) Y (1 n ) k ← $ { 0 , 1 } n k ← $ { 0 , 1 } n s ← $ { 0 , 1 } n s ← $ { 0 , 1 } n C := C X [ k, s, Ψ] C := PRF ( k, · ) C ′ ← $ O ( C ) C ′ ← $ O ( C ) return ( k, s, C ′ ) return ( k, s, C ′ ) Ψ ∈ UNSAT ⇐ ⇒ SD ( X [Ψ] , Y ) ≤ negl ( n ) Ψ ∈ USAT ⇐ ⇒ SD ( X [Ψ] , Y ) � 1 − 2 ǫ ◮ We can therefore decide USAT in BPP GapSD . ◮ Thus, if saiO and one-way functions both exist, then NP ⊆ AM ∩ coAM and the polynomial hierarchy collapses.

Recommend

Obfuscation Lecture 26 Different Flavours VBB Obfuscation Note: Considers only corrupt

Obfuscation Lecture 26 Different Flavours VBB Obfuscation Note: Considers only corrupt

Obfuscation Lecture 26 Different Flavours VBB Obfuscation Note: Considers only corrupt receiver x 1 Virtual f O(f) F B f(x 1) Black-Box x 2 (VBB) f(x 2) Obfuscation : A Secure (and f Family f Family b b single

466 views • 18 slides
) UNION SELECT `This_Talk` AS ('New Optimization and Obfuscation Optimization and Obfuscation

) UNION SELECT `This_Talk` AS ('New Optimization and Obfuscation Optimization and Obfuscation

) UNION SELECT `This_Talk` AS ('New Optimization and Obfuscation Optimization and Obfuscation Techniques)%00 Techniques)%00 Roberto Salgado Co-founder of Websec Provide information security solutions Pen-testing, training

1.11k views • 93 slides
HOST Circuit Obfuscation I ECE 525 Hardware Obfuscation (Drawn from "Hardware Protection

HOST Circuit Obfuscation I ECE 525 Hardware Obfuscation (Drawn from "Hardware Protection

HOST Circuit Obfuscation I ECE 525 Hardware Obfuscation (Drawn from "Hardware Protection thr Obfuscation) Circuit modification techniques designed to conceal or lock the functionality and/or circuit structure The modifications are designed

157 views • 11 slides
Lattice-Based SNARGs and Their Application to More Efficient Obfuscation Dan Boneh, Yuval Ishai,

Lattice-Based SNARGs and Their Application to More Efficient Obfuscation Dan Boneh, Yuval Ishai,

Lattice-Based SNARGs and Their Application to More Efficient Obfuscation Dan Boneh, Yuval Ishai, Amit Sahai, and David J. Wu Program Obfuscation [BGIRSVY01, GGHRSW13] Indistinguishability obfuscation ( ) has emerged as a central hub

648 views • 36 slides
Obfuscation: know your enemy Ninon EYROLLES neyrolles@quarkslab.com Serge GUELTON

Obfuscation: know your enemy Ninon EYROLLES neyrolles@quarkslab.com Serge GUELTON

Obfuscation: know your enemy Ninon EYROLLES neyrolles@quarkslab.com Serge GUELTON sguelton@quarkslab.com Introduction Control flow obfuscation Data flow obfuscation Python obfuscation Prelude Introduction Control flow obfuscation Data

1.23k views • 76 slides
Statistically-Significant Correlations 11 Oct, 2014 0F 2014 NNN4 Statistically-Significant

Statistically-Significant Correlations 11 Oct, 2014 0F 2014 NNN4 Statistically-Significant

Statistically-Significant Correlations 11 Oct, 2014 0F 2014 NNN4 Statistically-Significant Correlations 1 0F 2014 NNN4 Statistically-Significant Correlations 2 Statistically-Significant Exact Solutions Correlations For N random pairs

511 views • 16 slides
OBFUSCURO : : A Commodity Obfuscation Engine for Intel SGX Adil Ahmad *, Byunggill Joe*, Yuan

OBFUSCURO : : A Commodity Obfuscation Engine for Intel SGX Adil Ahmad *, Byunggill Joe*, Yuan

OBFUSCURO : : A Commodity Obfuscation Engine for Intel SGX Adil Ahmad *, Byunggill Joe*, Yuan Xiao Yinqian Zhang, Insik Shin, Byoungyoung Lee (* denotes equal contribution) Program Obfuscation Program Obfuscation Trusted Untrusted (except

1.34k views • 116 slides
Obfuscation from LWE? proofs, attacks, candidates Hoeteck Wee CNRS & ENS . . . . . .

Obfuscation from LWE? proofs, attacks, candidates Hoeteck Wee CNRS & ENS . . . . . .

Obfuscation from LWE? proofs, attacks, candidates Hoeteck Wee CNRS & ENS . . . . . . . . C x C x C x C C c obfuscation [ BGIRSVY01, H00, GR07, GGHRSW13 ] . . . . . . . . C x C x C x C C c obfuscation [

1.03k views • 92 slides
Authorship Obfuscation Using Heuristic Search Masters Thesis Defence by Janek Bevendorff on 20

Authorship Obfuscation Using Heuristic Search Masters Thesis Defence by Janek Bevendorff on 20

Authorship Obfuscation Using Heuristic Search Masters Thesis Defence by Janek Bevendorff on 20 June 2018 Supervisors: Prof. Dr. Benno Stein, PD Dr. Andreas Jakoby Unmasking for short texts Obfuscation against unmasking Obfuscation

1.38k views • 95 slides
Engineering Code Obfuscation ISSISP 2017 - Obfuscation I Christian Collberg Department of

Engineering Code Obfuscation ISSISP 2017 - Obfuscation I Christian Collberg Department of

Engineering Code Obfuscation ISSISP 2017 - Obfuscation I Christian Collberg Department of Computer Science University of Arizona http://collberg.cs.arizona.edu collberg@gmail.com Supported by NSF grants 1525820 and 1318955 and by the

924 views • 69 slides
Characterizing the Strength of Software Obfuscation Against Automated Attacks Sebastian Banescu,

Characterizing the Strength of Software Obfuscation Against Automated Attacks Sebastian Banescu,

Fakultt fr Informatik T echnische Universitt Mnchen Dagstuhl Seminar 17281 Characterizing the Strength of Software Obfuscation Against Automated Attacks Sebastian Banescu, BMW Group Outline 1 Introduction 2 Obfuscation in Theory 3

815 views • 69 slides
On The Complexity of Compressing Obfuscation Gilad Asharov, Naomi Ephraim, Ilan Komargodski, and

On The Complexity of Compressing Obfuscation Gilad Asharov, Naomi Ephraim, Ilan Komargodski, and

On The Complexity of Compressing Obfuscation Gilad Asharov, Naomi Ephraim, Ilan Komargodski, and Rafael Pass Cornell University and Cornell Tech CRYPTO 2018 Indistinguishability Obfuscation (iO) An obfuscator is a compiler which preserves

1.01k views • 86 slides
HOP: Hardware makes Obfuscation Practical Kartik Nayak With Chris Fletcher, Ling Ren, Nishanth

HOP: Hardware makes Obfuscation Practical Kartik Nayak With Chris Fletcher, Ling Ren, Nishanth

HOP: Hardware makes Obfuscation Practical Kartik Nayak With Chris Fletcher, Ling Ren, Nishanth Chandran, Satya Lokam, Elaine Shi and Vipul Goyal 1 Compression 1 KB 1 MB Used by everyone, perhaps license it - VBB Obfuscation No one should

942 views • 34 slides
INDISTINGUISHABILITY OBFUSCATION Mark Zhandry Stanford University * Joint work with Dan Boneh

INDISTINGUISHABILITY OBFUSCATION Mark Zhandry Stanford University * Joint work with Dan Boneh

INDISTINGUISHABILITY OBFUSCATION Mark Zhandry Stanford University * Joint work with Dan Boneh Program Obfuscation Intuition: Mangle a program Same functionality as original Hides all implementation details Potential uses: IP

295 views • 28 slides
*There was a statistically significant increase for all four measures [p<0.001] Brookfield S.

*There was a statistically significant increase for all four measures [p<0.001] Brookfield S.

*There was a statistically significant increase for all four measures [p<0.001] Brookfield S. Understanding and Facilitating Adult Learning: A Comprehensive Analysis of Principles and Effective Practices. San Francisco: Jossey-Bass; 1986. Kaufman

444 views • 19 slides
How Secure are Secure How Secure are Secure Interdomain Routing Protocols? Interdomain Routing

How Secure are Secure How Secure are Secure Interdomain Routing Protocols? Interdomain Routing

DIMACS Workshop On Secure Routing March 10, 2010 How Secure are Secure How Secure are Secure Interdomain Routing Protocols? Interdomain Routing Protocols? $ $ Sharon Goldberg Microsoft Research & Boston University y Michael Schapira

701 views • 54 slides
Obfuscation and Diversity: Probabilistic System Security Kyle Croman CS6410: Advanced Systems

Obfuscation and Diversity: Probabilistic System Security Kyle Croman CS6410: Advanced Systems

Obfuscation and Diversity: Probabilistic System Security Kyle Croman CS6410: Advanced Systems Definitions Obfuscation: T o be evasive, unclear, or confusing* In context, this means making a system difficult to understand and

665 views • 38 slides
Backward Analysis via Over-Approximate Abstraction and Under-Approximate Subtraction Alexey

Backward Analysis via Over-Approximate Abstraction and Under-Approximate Subtraction Alexey

Backward Analysis via Over-Approximate Abstraction and Under-Approximate Subtraction Alexey Bakhirkin 1 Josh Berdine 2 Nir Piterman 1 1 University of Leicester, Department of Computer Science 2 Microsoft Research Goal A backwards analysis

733 views • 23 slides
SALT 20 was statistically significant from placebo for the 8 and 12 mg BID cohorts in alopecia

SALT 20 was statistically significant from placebo for the 8 and 12 mg BID cohorts in alopecia

Abstract: American Academy of Dermatology Annual Meeting 2020 New CTP-543 (Oral JAK1/2 Inhibitor) Phase 2 Analyses: SALT 20 was statistically significant from placebo for the 8 and 12 mg BID cohorts in alopecia areata trial James Cassella, PhD;

318 views • 16 slides
Explaining Cortical Adaptation with a Statistically Optimized Normalization Mo del Martin

Explaining Cortical Adaptation with a Statistically Optimized Normalization Mo del Martin

Explaining Cortical Adaptation with a Statistically Optimized Normalization Mo del Martin W ain wrigh t Eero Simoncelli Vision Sciences Cen ter for Neural Science Harv ard Univ ersit y Couran t Institute New Y ork

390 views • 15 slides
Limits on the Power of Indistinguishability Obfuscation Gilad Asharov Gil Segev Limits on the

Limits on the Power of Indistinguishability Obfuscation Gilad Asharov Gil Segev Limits on the

Limits on the Power of Indistinguishability Obfuscation Gilad Asharov Gil Segev Limits on the Power of iO Limits on the Power of Indistinguishability Obfuscation (and Functional Encryption) FOCS 2015 On Constructing One-Way

841 views • 47 slides
DRM obfuscation vs auxiliary attacks Show me your trace and Ill tell you who you are REcon

DRM obfuscation vs auxiliary attacks Show me your trace and Ill tell you who you are REcon

DRM obfuscation vs auxiliary attacks Show me your trace and Ill tell you who you are REcon 2014 Introduction First layer: Code flattening pTra Algorithm reconstruction : RSA-OAEP Rebuilding a cipher function whiteboxed : AES-CBC

1.43k views • 103 slides
Towards statistically solid thinking about validation Rick.Donnelly@wsp.com | WSP | 6 May 2020

Towards statistically solid thinking about validation Rick.Donnelly@wsp.com | WSP | 6 May 2020

Towards statistically solid thinking about validation Rick.Donnelly@wsp.com | WSP | 6 May 2020 Traditional practice 2 Top five criteria (n=9) 3 Three revelations Rethinking validation: 1. Differentiate by count type 2. Trimming outliers

296 views • 16 slides
Obfuscation: Positive Results and Techniques Benjamin Lynn Manoj Prabhakaran Amit Sahai

Obfuscation: Positive Results and Techniques Benjamin Lynn Manoj Prabhakaran Amit Sahai

Obfuscation: Positive Results and Techniques Benjamin Lynn Manoj Prabhakaran Amit Sahai Stanford University Princeton University Princeton University EUROCRYPT '04 Obfuscation Hide the internals of

721 views • 28 slides

More recommend